rpm package
almalinux/toolbox-tests
pkg:rpm/almalinux/toolbox-tests
Vulnerabilities (99)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-25809 | Med | 5.0 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Mar 29, 2023 | runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes `/sys/fs/cgroup` writable in following conditons: 1. when runc is executed inside the user namespace, and the `config.json` does n | |
| CVE-2023-0778 | Med | 6.8 | < 0.0.99.3-7.module_el8.8.0+3470+252b1910 | 0.0.99.3-7.module_el8.8.0+3470+252b1910 | Mar 27, 2023 | A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system. | |
| CVE-2023-27561 | Hig | 7.0 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Mar 3, 2023 | runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. NOTE: this is | |
| CVE-2022-41725 | Hig | 7.5 | < 0.0.99.4-6.el9_3 | 0.0.99.4-6.el9_3 | Feb 28, 2023 | A denial of service is possible from excessive resource consumption in net/http and mime/multipart. Multipart form parsing with mime/multipart.Reader.ReadForm can consume largely unlimited amounts of memory and disk files. This also affects form parsing in the net/http package wi | |
| CVE-2022-41724 | Hig | 7.5 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Feb 28, 2023 | Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly | |
| CVE-2022-41723 | Hig | 7.5 | < 0.0.99.4-6.el9_3 | 0.0.99.4-6.el9_3 | Feb 28, 2023 | A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests. | |
| CVE-2023-25173 | Med | 5.3 | < 0.0.99.4-5.module_el8.9.0+3643+9234dc3b | 0.0.99.4-5.module_el8.9.0+3643+9234dc3b | Feb 16, 2023 | containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group acces | |
| CVE-2022-3064 | Hig | 7.5 | < 0.0.99.4-6.el9_3 | 0.0.99.4-6.el9_3 | Dec 27, 2022 | Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory. | |
| CVE-2022-41717 | Med | 5.3 | < 0.0.99.3-9.el9 | 0.0.99.3-9.el9 | Dec 8, 2022 | An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the s | |
| CVE-2022-41715 | Hig | 7.5 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Oct 14, 2022 | Programs which compile regular expressions from untrusted sources may be vulnerable to memory exhaustion or denial of service. The parsed regexp representation is linear in the size of the input, but in some cases the constant factor can be as high as 40,000, making relatively sm | |
| CVE-2022-2880 | Hig | 7.5 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Oct 14, 2022 | Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy s | |
| CVE-2022-2879 | Hig | 7.5 | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | Oct 14, 2022 | Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 Mi | |
| CVE-2022-2990 | Hig | 7.1 | < 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1 | 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1 | Sep 13, 2022 | An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissi | |
| CVE-2022-2989 | Hig | 7.1 | < 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1 | 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1 | Sep 13, 2022 | An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissio | |
| CVE-2022-27664 | Hig | 7.5 | < 0.0.99.3-9.el9 | 0.0.99.3-9.el9 | Sep 6, 2022 | In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. | |
| CVE-2022-32189 | Hig | 7.5 | < 0.0.99.3-9.el9 | 0.0.99.3-9.el9 | Aug 10, 2022 | A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service. | |
| CVE-2022-32148 | Med | 6.5 | < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | Aug 10, 2022 | Improper exposure of client IP addresses in net/http before Go 1.17.12 and Go 1.18.4 can be triggered by calling httputil.ReverseProxy.ServeHTTP with a Request.Header map containing a nil value for the X-Forwarded-For header, which causes ReverseProxy to set the client IP as the | |
| CVE-2022-30635 | Hig | 7.5 | < 0.0.99.3-7.module_el8.8.0+3470+252b1910 | 0.0.99.3-7.module_el8.8.0+3470+252b1910 | Aug 10, 2022 | Uncontrolled recursion in Decoder.Decode in encoding/gob before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a message which contains deeply nested structures. | |
| CVE-2022-30633 | Hig | 7.5 | < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | Aug 10, 2022 | Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag. | |
| CVE-2022-30632 | Hig | 7.5 | < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6 | Aug 10, 2022 | Uncontrolled recursion in Glob in path/filepath before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path containing a large number of path separators. |
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes `/sys/fs/cgroup` writable in following conditons: 1. when runc is executed inside the user namespace, and the `config.json` does n
- affected < 0.0.99.3-7.module_el8.8.0+3470+252b1910fixed 0.0.99.3-7.module_el8.8.0+3470+252b1910
A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. NOTE: this is
- affected < 0.0.99.4-6.el9_3fixed 0.0.99.4-6.el9_3
A denial of service is possible from excessive resource consumption in net/http and mime/multipart. Multipart form parsing with mime/multipart.Reader.ReadForm can consume largely unlimited amounts of memory and disk files. This also affects form parsing in the net/http package wi
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly
- affected < 0.0.99.4-6.el9_3fixed 0.0.99.4-6.el9_3
A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.
- affected < 0.0.99.4-5.module_el8.9.0+3643+9234dc3bfixed 0.0.99.4-5.module_el8.9.0+3643+9234dc3b
containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group acces
- affected < 0.0.99.4-6.el9_3fixed 0.0.99.4-6.el9_3
Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.
- affected < 0.0.99.3-9.el9fixed 0.0.99.3-9.el9
An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the s
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
Programs which compile regular expressions from untrusted sources may be vulnerable to memory exhaustion or denial of service. The parsed regexp representation is linear in the size of the input, but in some cases the constant factor can be as high as 40,000, making relatively sm
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy s
- affected < 0.0.99.4-5.module_el8.9.0+3627+db8ec155fixed 0.0.99.4-5.module_el8.9.0+3627+db8ec155
Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 Mi
- affected < 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1fixed 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1
An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissi
- affected < 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1fixed 0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1
An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissio
- affected < 0.0.99.3-9.el9fixed 0.0.99.3-9.el9
In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.
- affected < 0.0.99.3-9.el9fixed 0.0.99.3-9.el9
A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.
- affected < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6fixed 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6
Improper exposure of client IP addresses in net/http before Go 1.17.12 and Go 1.18.4 can be triggered by calling httputil.ReverseProxy.ServeHTTP with a Request.Header map containing a nil value for the X-Forwarded-For header, which causes ReverseProxy to set the client IP as the
- affected < 0.0.99.3-7.module_el8.8.0+3470+252b1910fixed 0.0.99.3-7.module_el8.8.0+3470+252b1910
Uncontrolled recursion in Decoder.Decode in encoding/gob before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a message which contains deeply nested structures.
- affected < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6fixed 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6
Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag.
- affected < 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6fixed 0.0.99.3-1.module_el8.6.0+3136+bfcd65b6
Uncontrolled recursion in Glob in path/filepath before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path containing a large number of path separators.
Page 4 of 5